The following Fedora 18 Security updates need testing: Age URL 227 https://admin.fedoraproject.org/updates/FEDORA-2013-6117/eucalyptus-3.2.2-1.... 73 https://admin.fedoraproject.org/updates/FEDORA-2013-17195/spice-gtk-0.18-3.f... 70 https://admin.fedoraproject.org/updates/FEDORA-2013-17431/thunderbird-17.0.9... 68 https://admin.fedoraproject.org/updates/FEDORA-2013-17635/wireshark-1.10.2-4... 66 https://admin.fedoraproject.org/updates/FEDORA-2013-17853/davfs2-1.4.7-3.fc1... 9 https://admin.fedoraproject.org/updates/FEDORA-2013-21875/389-ds-base-1.3.0.... 4 https://admin.fedoraproject.org/updates/FEDORA-2013-22312/xen-4.2.3-10.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-22315/ruby-1.9.3.484-32.... 4 https://admin.fedoraproject.org/updates/FEDORA-2013-22313/subversion-1.7.14-... 2 https://admin.fedoraproject.org/updates/FEDORA-2013-22422/php-symfony2-Secur... 2 https://admin.fedoraproject.org/updates/FEDORA-2013-22456/seamonkey-2.22.1-1... 2 https://admin.fedoraproject.org/updates/FEDORA-2013-22497/ganglia-3.6.0-3.fc... 0 https://admin.fedoraproject.org/updates/FEDORA-2013-22607/nbd-3.5-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-22606/maradns-2.0.07d-1....
The following Fedora 18 Critical Path updates have yet to be approved: Age URL 296 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.fc... 12 https://admin.fedoraproject.org/updates/FEDORA-2013-21783/unzip-6.0-11.fc18 12 https://admin.fedoraproject.org/updates/FEDORA-2013-21776/soprano-2.9.4-2.fc... 9 https://admin.fedoraproject.org/updates/FEDORA-2013-21825/gvfs-1.14.2-5.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-21847/sane-backends-1.0.... 6 https://admin.fedoraproject.org/updates/FEDORA-2013-22215/taglib-1.9.1-2.fc1... 6 https://admin.fedoraproject.org/updates/FEDORA-2013-22253/kde-settings-4.9-2... 4 https://admin.fedoraproject.org/updates/FEDORA-2013-22299/fedora-bookmarks-1... 2 https://admin.fedoraproject.org/updates/FEDORA-2013-22457/libbluray-0.4.0-2....
The following builds have been pushed to Fedora 18 updates-testing
ReviewBoard-1.7.19-1.fc18 gimp-separate+-0.5.8-9.fc18 inception-0.3.3-2.fc18 kanyremote-6.3.2-1.fc18 maradns-2.0.07d-1.fc18 nbd-3.5-1.fc18 perl-PAR-Packer-1.016-1.fc18 python-ase-3.8.1.3440-8.fc18 python-djblets-0.7.24-1.fc18 redshift-1.8-1.fc18 shared-color-targets-0.1.3-1.fc18
Details about builds:
================================================================================ ReviewBoard-1.7.19-1.fc18 (FEDORA-2013-22595) Web-based code review tool -------------------------------------------------------------------------------- Update Information:
* Wed Nov 27 2013 Stephen Gallagher sgallagh@redhat.com - 1.7.19-1 - New upstream bugfix release 1.7.19 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.19/ - New Features: * Added support for two-factor authentication for GitHub. - Performance Improvements: * Re-introduced browser caching on the review request page. - Web API Changes: * Added the mirror_path field to Repository Resource. - Bug Fixes: * Fixed the default focus on the Review dialog. The top-most field now always has default focus. * Fixed displaying review requests for groups on a Local Site. * Prevented rare crashes with Local Sites using the new permissions support without any granted permissions. * Fixed HTTP basic authentication with the web API when using fastcgi. -------------------------------------------------------------------------------- ChangeLog:
* Wed Nov 27 2013 Stephen Gallagher sgallagh@redhat.com - 1.7.19-1 - New upstream bugfix release 1.7.19 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.19/ - New Features: * Added support for two-factor authentication for GitHub. - Performance Improvements: * Re-introduced browser caching on the review request page. - Web API Changes: * Added the mirror_path field to Repository Resource. - Bug Fixes: * Fixed the default focus on the Review dialog. The top-most field now always has default focus. * Fixed displaying review requests for groups on a Local Site. * Prevented rare crashes with Local Sites using the new permissions support without any granted permissions. * Fixed HTTP basic authentication with the web API when using fastcgi. --------------------------------------------------------------------------------
================================================================================ gimp-separate+-0.5.8-9.fc18 (FEDORA-2013-22627) Rudimentary CMYK support for The GIMP -------------------------------------------------------------------------------- Update Information:
New package containing rudimentary CMYK support for The GIMP. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #34 - wrong permissions of /usr/doc/gimp-manual* https://bugzilla.redhat.com/show_bug.cgi?id=34 [ 2 ] Bug #913289 - Review Request: gimp-separate+ - A plug-in providing rudimentary CMYK support for The GIMP https://bugzilla.redhat.com/show_bug.cgi?id=913289 [ 3 ] Bug #35 - Bugs in /etc/rc.d/init.d/gated script https://bugzilla.redhat.com/show_bug.cgi?id=35 --------------------------------------------------------------------------------
================================================================================ inception-0.3.3-2.fc18 (FEDORA-2013-22603) A fireWire physical memory manipulation tool -------------------------------------------------------------------------------- Update Information:
* Mon Dec 02 2013 Fabian Affolter mail@fabian-affolter.ch - 0.3.3-2 - Remove test suite (#1036375) * Thu Nov 28 2013 Fabian Affolter mail@fabian-affolter.ch - 0.3.3-1 - Updated to new upstream release 0.3.3 * Thu Nov 28 2013 Fabian Affolter mail@fabian-affolter.ch - 0.3.3-1 - Updated to new upstream release 0.3.3 * Thu Nov 28 2013 Fabian Affolter mail@fabian-affolter.ch - 0.3.3-1 - Updated to new upstream release 0.3.3 -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 2 2013 Fabian Affolter mail@fabian-affolter.ch - 0.3.3-2 - Remove test suite (#1036375) * Thu Nov 28 2013 Fabian Affolter mail@fabian-affolter.ch - 0.3.3-1 - Updated to new upstream release 0.3.3 * Wed Sep 4 2013 Fabian Affolter mail@fabian-affolter.ch - 0.3.0-1 - Updated to new upstream release 0.3.0 * Mon Aug 26 2013 Fabian Affolter mail@fabian-affolter.ch - 0.2.6-1 - Updated to new upstream release 0.2.6 * Sat Aug 3 2013 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.2.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1036375 - inception-debuginfo-0.3.3-1 is empty https://bugzilla.redhat.com/show_bug.cgi?id=1036375 --------------------------------------------------------------------------------
================================================================================ kanyremote-6.3.2-1.fc18 (FEDORA-2013-22602) KDE frontend for anyRemote -------------------------------------------------------------------------------- Update Information:
v6.3.2 -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 2 2013 Mikhail Fedotov <anyremote at mail.ru> - 6.3.2 - Fixed RedHat bugzilla bug 1034914 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1034914 - [abrt] kanyremote-6.3.1-1.fc19: kanyremote:3457:setStatusConnected:AttributeError: ConfigReader instance has no attribute 'dvSrvType_' https://bugzilla.redhat.com/show_bug.cgi?id=1034914 --------------------------------------------------------------------------------
================================================================================ maradns-2.0.07d-1.fc18 (FEDORA-2013-22606) Authoritative and recursive DNS server made with security in mind -------------------------------------------------------------------------------- Update Information:
This update fixes possible blind spoof attack vulnerability. See http://samiam.org/blog/20131202.html for more details. -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 2 2013 Tomasz Torcz ttorcz@fedoraproject.org - 2.0.07d-1 - fix against possible blind spoof attack --------------------------------------------------------------------------------
================================================================================ nbd-3.5-1.fc18 (FEDORA-2013-22607) Network Block Device user-space tools (TCP version) -------------------------------------------------------------------------------- Update Information:
Add systemd support for nbd-server. Use strcmp() rather than strncmp() for CVE-2013-6410. -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 2 2013 Christopher Meng rpm@cicku.me - 3.5-1 - Fix incorrect parsing of access control file in nbd-server(CVE-2013-6410). - Add systemd support for nbd-server(BZ#877518). - Enable logging to syslog. * Tue Sep 17 2013 Christopher Meng rpm@cicku.me - 3.4-1 - New version. * Sat Aug 3 2013 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 3.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Fri Jun 7 2013 Richard W.M. Jones rjones@redhat.com - 3.3-1 - New upstream version 3.3. - Modernize the spec file. - There is a new program (nbd-trdump). * Thu Feb 14 2013 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 2.9.20-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1035998 - CVE-2013-6410 nbd: incorrect parsing of access control file in nbd-server https://bugzilla.redhat.com/show_bug.cgi?id=1035998 --------------------------------------------------------------------------------
================================================================================ perl-PAR-Packer-1.016-1.fc18 (FEDORA-2013-22625) PAR Packager -------------------------------------------------------------------------------- Update Information:
This release removes an unsed variable from XS code. -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 2 2013 Petr Pisar ppisar@redhat.com - 1.016-1 - 1.016 bump -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1036594 - perl-PAR-Packer-1.016 is available https://bugzilla.redhat.com/show_bug.cgi?id=1036594 --------------------------------------------------------------------------------
================================================================================ python-ase-3.8.1.3440-8.fc18 (FEDORA-2013-22618) Atomic Simulation Environment -------------------------------------------------------------------------------- Update Information:
Should fix https://bugzilla.redhat.com/show_bug.cgi?id=1010479#c10 New upstream version fixes the conflict with the_silver_searcher New upstream version fixes the conflict with the_silver_searcher New upstream version fixes the conflict with the_silver_searcher New upstream version fixes the conflict with the_silver_searcher -------------------------------------------------------------------------------- ChangeLog:
* Sat Nov 30 2013 Marcin Dulak Marcin.Dulak@gmail.com - 3.8.1.3440-8 - fix Exec in ase-gui.desktop - remove MANIFEST.in from %doc - PATH modified for tests to include scripts dir * Fri Nov 22 2013 Marcin Dulak Marcin.Dulak@gmail.com - 3.8.1.3440-7 - new upstream version, old patches removed -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1010479 - Binary name conflict with python-ase and the_silver_searcher https://bugzilla.redhat.com/show_bug.cgi?id=1010479 --------------------------------------------------------------------------------
================================================================================ python-djblets-0.7.24-1.fc18 (FEDORA-2013-22595) A collection of useful classes and functions for Django -------------------------------------------------------------------------------- Update Information:
* Wed Nov 27 2013 Stephen Gallagher sgallagh@redhat.com - 1.7.19-1 - New upstream bugfix release 1.7.19 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.19/ - New Features: * Added support for two-factor authentication for GitHub. - Performance Improvements: * Re-introduced browser caching on the review request page. - Web API Changes: * Added the mirror_path field to Repository Resource. - Bug Fixes: * Fixed the default focus on the Review dialog. The top-most field now always has default focus. * Fixed displaying review requests for groups on a Local Site. * Prevented rare crashes with Local Sites using the new permissions support without any granted permissions. * Fixed HTTP basic authentication with the web API when using fastcgi. -------------------------------------------------------------------------------- ChangeLog:
* Wed Nov 27 2013 Stephen Gallagher sgallagh@redhat.com - 0.7.24-1 - New upstream release 0.7.24 - http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.24.NEWS * djblets.util.http: * Fixed ETag matching --------------------------------------------------------------------------------
================================================================================ redshift-1.8-1.fc18 (FEDORA-2013-22597) Adjusts the color temperature of your screen according to time of day -------------------------------------------------------------------------------- Update Information:
This is an update to the latest version 1.8 of redshift -------------------------------------------------------------------------------- ChangeLog:
* Sat Nov 30 2013 Milos Komarcevic kmilos@gmail.com - 1.8-1 - Update to 1.8 (#1029155) - Source comes from GitHub now * Sun Aug 4 2013 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 1.7-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1029155 - Update package to 1.8, please https://bugzilla.redhat.com/show_bug.cgi?id=1029155 --------------------------------------------------------------------------------
================================================================================ shared-color-targets-0.1.3-1.fc18 (FEDORA-2013-22628) Shared color targets for creating color profiles -------------------------------------------------------------------------------- Update Information:
New upstream release with several new targets from Wolf Faust. -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 2 2013 Richard Hughes richard@hughsie.com 0.1.3-1 - New upstream release with several new targets from Wolf Faust. --------------------------------------------------------------------------------